Tech »  Topic »  'BootHole' Vulnerability Exposes Secure Boot Devices to Attack

'BootHole' Vulnerability Exposes Secure Boot Devices to Attack


A flaw in the GRUB2 bootloader affects most Linux devices and some Windows computers using UEFI Secure Boot.

A newly discovered vulnerability in the GRUB2 bootloader, dubbed BootHole, may threaten Linux and Windows machines using Secure Boot. Attackers who exploit it could interfere with the boot process and control how the operating system (OS) is loaded, bypassing security controls.

The boot process is critical to securing any device. It relies on a variety of firmware to initialize and control different components of a machine, and it coordinates how the OS is loaded.

"During the boot process, anything that loads earlier is generally higher privilege than something that loads later," says Jesse Michael, principal researcher with Eclypsium, where researchers discovered BootHole (CVE-2020-10713). BootHole has a high CVSS score of 8.2.

Secure Boot is meant to protect the boot process from malicious code. It uses cryptographic signatures to verify each piece ...


Copyright of this story solely belongs to darkreading.com . To see the full text click HERE